My company uses Mimecast. Can I still send phishing tests to my users?
To successfully whitelist our phishing and training related emails when using Mimecast, you should create a new Permitted Sender policy to allow our phishing and training related emails through. (Important: do not edit your default Permitted Sender policy. A new one must be created) See: Permitted Senders Policies and How to Create/Change Policies.
Set the policy as shown in the below screenshot, and include our three IP's which we send mail from, listed below:
If you're on the EU instance of KnowBe4, the IP addresses you need to whitelist will be different. See here for more information.
This new policy will allow any inbound mail flow originating from our three IP addresses to reach your users.
If you have difficulties whitelisting through Mimecast, an alternative option is smarthosting, which will allow us to bypass Mimecast and send our phishing tests directly to your mail server. For more information on smarthosting, contact support.